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^.020030010509 #^ <Qx\: 2003/10/1 

5L *1H (access control)* 5U^ afl^^M flfr ^r-g-^rfe 

^H^(ID)fi|- sfl^S. (password)* Sl^Ui, A}-8-*r <£^4^H ^3^, 

TCP/IP ^ UDP/IP* **fl ^e)<5}ji*} *Kr <H#e1^1°l^ ^^>7fl 3^31, 

°H £-§-*r7 r ^>-g-^ ^7ls] ip IP ^<?]*m ^n, £-91 

5.1-8: <H#e^H^ 3l#ofl ^-e*r5.^- tM^clS^, Ji*> 7l^o] &i=. <?1e^1 

B^-g- &-g-*^ tH*l ^neflolH. -aj-^SM ^r^^Tfl ^7>^-o.S 

£ 3 

SNMP, CLI, TL1, =S£f OAMP 
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20030010509 #^ U*}: 2003/10/1 

n o v ^r^ Al^tfl^ ^tr ^tt ^ {Security method for access control 

of Network management System} 

51 l£r 3 -§-3^ D o v ^3 H^£«(SNMP) ^ CLKTLD* °l-§-*V 

£ 2^ #efl 7l^ofl n ^sl 0SI 5L^ %^\^ S.^, 

51 3^ ^ofl 4^ ^1^^* 0SI %^ S-t^f 5^. 

< 4 > ^- ^ o. Aj^Efl oj^ej^oi^ BS£#2] y]^^. a>^x^ t $a 

■3- ^-a]s:>71 ^>ol nj- ^ (Simple Network Management 

Protocol: SNMP)* 71^^ ^ v)1h^3. ^r&) ESSff o] ^ SNMFb 7}^ <^ 

aV^o] vflB^a. ^E] SSS#ole]- ^- ^ ^o.t^, AA Vl/V2/V3£] «1 ^ ^.S. ^S^i zl 

V|)B^3. ^li^^r °1 Si *1 SNMP1- °l-§-*Kr =L^ 

^E^lo]^ (Graphic User Interface: GUI) 71*1^ ^ej^B. ^ *l^(Element Management 

23-3 



^20030010509 2003/10/1 

system:EMS)4 ^ EH\t^§- ^-tl^H ^l^^fl 0 ^ 

(Command Line Interface :CLI)1- ^Ml A^^A. 
<6> 5L ^ofl # #3 ^^.S#(SNMP) ^ CLI(TLl)* <>l-§-*r 

E ^ *k^*\7) £ 1* #^^f ^ , ^^(100)^ *fl^Kr nj- ^ o]E^l 

°1^( management interface) 0 !]^- "TL1/CLI (Transact ion Language 1/Command Line 

Interface) (HO)"^ "SNMP rfls] £1 (120)"<>1 9X^. *\^-& "4. (management 

channel)^* ^-«fl ^Ji, ^ ^ ^e)^>7fl ^cf. 

<7> TLKllO)^ , ^l^-s] ^#(200)-i-4 aIbJ^ 5LB(serial port)S. 33 a] 

^^(lOO)-!: Q^lt ^S. $ZJ2, public network) (300)-8- -f-tr <M(telnet)(400) 

€3 *1H (remote control )5E 7pg^}cf. 
<8> tr^, SNMP cfle|«?l (120)£- UDP(user datagram protocol )/IP# °l-§-^H ^^(300)^; 

^S. EMS(Element Management system) ^^(500)5+ <*l^£H a}^o]x|i|, OSKopen 

systems interconnection) CLNP( Connect ion less Network- Protocol ) HS£-fS. A )~g-.£|<>| 

o> ojc^ 7j ±°. TLKllO)^ SNMP cfl e)o]( 120)^: 0AMP(0perations Administration 

Maintenance Provisioning)(130)S-T-E| , JEE^ IPC( Interprocess Communication)-!- ^f-^fl ^^L^l- 

<io> £ 2^ ^Bfl 7l#^ aj-.g- i^s] Al^Efl^- OS I 5.^ i^^lcf. 

£ 21- ^2^, *M E^]^(400) EMS a^(500)^ #e) ?fl#-a- **fl nflolE^a 31^ 
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1020030010509 #^ <^^>: 2003/10/1 

4 ^5)<H, TCP/IP JEE^r UDP/IP ^^-5. <H#bMM41 31 #{ SNMP/ ^/ TFTPCTrivial File 
Transfer Protocol )H1 ^5-^>7ll ^cf. 
<n> ^7}2)- £o] ^^s)^ u o >^.^ Al^Efloll a>^-£]^. sNMPtt VI/ V2/ V3*W ^r-§-£li 

Hi, n # SNMP VI/ V2^ *fl ^ °-5.tt "read-only"/"read-write" tH^Me] 

(community)* *U3.^Rr *?Hi°l ^S. *}-%-S\JL 9X°~^ , SNMP V3^ 5.%°} x4H 

<13> o^c-fl, SNMP w^l/ *1*12^ ^^^1 ^-H-MEl^ "read-only"^ ^-f "public", " 

read-write"^ ^-f "private''^. /.>-§-£) :n ojcf. SE^r, ^efl-i-*- o]&\& tS^b) 

= ^(hard-coding)^ , 5H^B] -§- 0 l*r*l °l^r 

41 fl^Wfe ?\^*] A±3\IL 7\n}7\ ^#5]<H oj<qo] cf^ A}eJ-o] ojo)^ ^ 

D o v Aiieflofl ^e^- ^ &7fl s|es ji^tf *r 9X^. 

<14> £ ^-gr, ^"71^ ^ &*ll^ fl«H *H<£3 ^0.5., A\-%-Z}5L 

*1^ ^#e]?flol^ tt^d-i- w>^l *H (access control)* ^ 

w o v ^^r, ^l^ £-§-* r 7r TCP/ ^(Transmission Control Protocol/Internet protocol) S 
^ UDP/IP(User Datagram Protocol/Internet protocol)* -f-^fl IP( Internet protocol) ^^7} 
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20030010509 #^ <Qz}: 2003/10/1 

^3<H 9lt= IP ^ 9l$m IP €3*8^- ^«g*Hr *\] l #7fl; £ # 

71 *H 1 ^*fl ^^ofl 3^*1. oH^OD)/^^ J= (Password) <8 ^ S^r 

H](community)l-^r -g^SH ^Eflofl ^*Rr ^1 2 ol-f-^lfe 3# 

<17> -g- ^ofl ^-g-s]^ #o) nv ^ ^SS^-(SNMP) ^ CLKTLD* ol-g-tjV a^eA 

<18> JE 3^ 1^1 icj-^- Al^Efl-i- 0SI #2: J2-^ ^^t!" S^olcf. 

<19> u}oh TLl(llO)^ °l-g-*H -§-*r# ^-f , £ 1 ^ £ 3-i- #2:*}^, ^ 

*i £-g-*Hr o\o]x^(iD)9\- 4^ ^(password)!- <y3trt}. a}^} 

3°1 TCP/IP UDP/IP» -g-sfl ^el^Ji^ ^i^Eflo) ^s-el^oi^ Tflf^l ^ 

^-^-Cf. ojufl ^-§-^71- Af-g-^ ^^7l^ IP ^7 r nisi IP ^4i<y*l-& 3) 

«fl , £.9} si- (150)^ -f-afl °]^^?]}°}& 711^1 ^ e*>£^ 

< 20 > IP nj-( Ip network) (^m^l, S. 1 °\]*\S>] ^-f^J-)^; ^-^ ^3 ^ ^(remote 

management channel)^ ^ \|(400)£- oH^/sfl^ s. ^.o> ^Ht}- ig)^ 
(telnet protocol a>-§-§>^ ^-g- ^-^71 (terminal )^1 IP ^(IP address)7> <g;£|7} 
€ ^ Sa^r ^E^(filtering) 7l^§- 7>^cl-. 

<2i> <^7H ; o] "TLl" 71^* "CLKCommand Line Interface)" ^ (task)^ 

€^ ^711^ ^0.5. ^^o] s)o] oicf. 
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^*}: 2003/10/1 



<22> 



n^Jl, SNMP VI/ V2^ 7l-g-3<y iL^o] ^^.u|Ell- ^*fl o]i=. "read-only 



•• ^°-u|E]sq- "read-write" ^TM^S. oj-f-o^]^ 



<23> 



7 r ^ r 5^ trtf. ^, "SNMP"« ol-g-tflA^ ^^-MEll- <£o}^ +x=_ oj J1) _g. 7 }.^ r JEL 
£- Kt-V 7 r "Til" **fl ^ Sl°1 0 >^: EMS ^(500)^ 7>^-^>rf. IE 

^^Alofls :&E)*Kr EMS *W500)£r^ ^°)y} iL^sM^icf. 



<24> 



nelJl, SNMP VI/ V27> UDP/IPM- TCP/IPS A>-g-^- ^-f "TL1"4 ^h^}*] 3. IP 



^ti £-§-*}°l IP 7l(key)S «H iL^l °l^-8: MIB°-S M*fl ^ 

S. 1 ^ S. 17*1 



<25> 



5. l^r ^(ingress packets)* ^]^^}7] ^fr ^3} o} 0 !^* S^ltr 



cf. o] 7^^]^ #0. "entFilterPolicyTable"^ "entFi IterPol icyld"^ flM 1 }. 



<26> 



' DEFVAL '^r 5.€- sfl^i^* W. 



<27> [S l] 



|ent IngressPi 1 terPol icyld OBJECT-TYPE 

SYNTAX INTEGER (0..255) 

MAX-ACCESS read-write 
STATUS current 
DESCRIPTION 



packets . 



Indiactes the policy id of system for filtering ingress 

The value of this object is that of entFi 1 terPol icyld 
in entFi IterPol icyTable. 

'DEFVAL' : accept all ingress packets 



DEFVAL { 0 } 

: := {entConf ig 13} 
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•3 ^^>: 2003/10/1 



<28> 



12^ sfl^ (egress packets)* €3*8*>7] a^eAo) ^ o}c>l^. 

^Altlcf. o] zfl^o] ^ "entFilterPolicyTable"^ "entFi IterPol icy I d"2] ^ojr}. 
<29> 'DEFVAL'^ 5.^ #^ 2fl^-&* t^el^l 

<so> 2] 



entiigressKi IterM icyld 0BJt!CT-TYPK 

SYNTAX INTEGER (0..255) 
MAX-ACCESS read-write 
STATUS current 
DESCRIPTION 




Indiactes the policy id of system for filtering egress packets. 
The value of this object is that of entFi 1 terPol icyld 
in entFi IterPol icyTable. 


'DEFVAL' : not discard all 

11 


egress packets 


DEFVAL { 0 } 

: := ipnl-fnnf i> 14 i 





<31> 



<32> 



<33> 



"row"^ "entFi Iter IpTable"^ HSSf S°1H£) "row" 1- 7}^\^1^. 

«1 1^1]^ "row"!- ^*Rr3] $X°]*] , "entFi IterPol icyPointer" 7>eM*l 
^ "row"7|- ^-g-^-S ^^^nf. 

^ejal, <>! "row"# ^Ml^-feti] 5a°H, "entFi IterPol icyPointer" 

7 r ^ ?H "row"7l- <^^l^cf. 



<34> 
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n <ax}: 2003/10/1 



IS. 3] 



lentFI 1 terPoi icyTable OBJECT-TYPE 



SYNTAX SEQUENCE OF EntFi 1 terPoi icyEntry 
MAX-ACCESS not-accessible 
STATUS current 
DESCRIPTION 

M 

This table contains the filtering policies of system 
on ingress/egress packet. 

A row in this table is pointing a row in protocol table 
such as entFi 1 terlpTable. 

For creating a row in this table, the row that is pointed 

by entFi IterPol icyPointer object was first created. 

And for destroying a row in this table, the row that is pointed 

by entFi IterPol icyPointer object was first destroyed. 

; ;= { pntCnnf ig 15 } 



<35> 



<36> 4] 



entFi 1 terPoi icyEntry OBJECT-TYPE 

SYNTAX EntFi 1 ter Pol icyEntry 
MAX-ACCESS not-accessible 
STATUS current 
DESCRIPTION 



Each entry consists of a list of parameters that 
represents filtering policy on a system. 

INDEX { entFi 1 terPoi icylndex } 
::= { entFi IterPol icyTable 1 } 

EntFi IterPol icyEntry : := SEQUENCE { 

entFi IterPol icylndex INTEGER, 
entFi IterPol icyld INTEGER, 
entFi IterPol icyPointer RowPointer , 

entFi IterPol icyRowStatus RowStatus 

i 



<37> 



OL^\JL t i 5^ "entFi IterPol icyTable M S£] <y^i°l^. 
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<38> [s. 5] 



.53 o 



H*}: 2003/10/1 



entFi 1 terPol icy Index OBJECT-TYPE 

SYNTAX INTEGERCl. .9) 

MAX-ACCESS read-only 
STATUS current 
DESCRIPTION 



The index into the entFi 1 terPol icyTable. 

tt 

:= {entFi 1 terPol icvEntrv 1 > 



<39> ZL^JL, S. 6^r <3 ^ 3L±t #^ ^ o}o] t) o] 3_<$X\ 



<40> [a 6] 



entFi IterPolicyld OBJECT-TYPE 




SYNTAX INTEGERCl. .255) 




MAX-ACCESS read-create 




STATUS current 




DESCRIPTION 




Indicates the identification of ingress or 


egress policy. 


A same policy id could belong to many rows 


in this table. 


::= \ entFi 1 terPol icvEntrv 2 1 





<4i> ZL?]3L, S. 7^r "entFi 1 terlp"^ ii£f 3.<^*\ "roW'^l tfltr SSlBj-S- tflXW. 

= S.°\]*\ Q^3-<&2) ^^o) ol^-olcf. 

<42> ofl-i- i-Tg, o] zfl^o^ ^oflcq ^-c] »entFilterIpIndex.3"^: "entFi Iter lp"&2\ " 

row"* 7>el^lcf. 

<43> 
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<43> 1^20030010509 
IK 7] 



2003/10/1 



entFi 1 terPol icyPointer OBJECT-TYPE 

SYNTAX RowPo inter 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

Represents a pointer to a row in protocol table such as 

entFi lterlp table. The value is the name of the instance of the first columnar object 
in the protocol table. 

instance of 
table. 



For example, entFi 1 ter Iplndex.3 that is the value of the 
this object would point to the 3rd row in the entFi lterlp 



:= {entFi IterPol icyEntry 3 } 



<44> ZL^JL, X 8 olH "row"!- ^^il, ^^M-, °1 3E*IH ^*fl*Rr 



<45> 



"row"* ^l^Rr^l ol-g-^tj.. 

^ej= f "entFi 1 ter Ip"^^- 5. 
<HH "row"^ ^^H^ ^ ^ojcf 



S^l ^Tfl^ "row"7f ^^^1^1 ^tf^ f o] Si 



<46> 
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IS 8] 



entFi 1 terPol icyKowStatus OBJECT-TYPE 
SYNTAX RowStatus 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

This object is used to create a new row or modify or 
delete an existing row in this table. 

If the related row of protocol table such as entFi Iter Ip table 
wasn't created, a row in this table could have not been created. 

The related row of protocol table should have been first 
destroyed before a row in this table is destroyed. 

'■'= { entFi IterPol icyEntry 4 } 



<48> IS. 9] 



entFi Iter IpTable OBJECT-TYPE 

SYNTAX SEQUENCE OF EntFi IterlpEntry 
! MAX-ACCESS not-accessible 

STATUS current 
DESCRIPTION 

n 

This table contains the details of a filter policy over IP protocol. 

ti 

'■'■=< entConfig 16 > 

<49> ZLE]JL, a HHH ^HEl^ IP ^Ei ^-fr cflS^r^ SfEl-^lEil- 

<50> 
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[& 10] 



entKi I ter IpEntry OBJECT-TYPE 



SYNTAX EntFilterlpEntry 
MAX-ACCESS not-accessible 
STATUS current 
DESCRIPTION 

Each entry consists of a list of parameters that 
represents a filter policy over IP protocol . 



INDEX 



{ entFi Iter Iplndex } 



: := { entFi Iter IpTable 1 } 

EntFilterlpEntry ::= SEQUENCE { 

en t F i 1 1 er I p I ndex I NTEGER , 

entFi 1 terlp IpAddress, 

entFi 1 ter IpMask IpAddress, 

entFi Iter IpPortNum INTEGER, 

en t F i 1 1 e r I pPr o t oco 1 I NTEGER , 

entFi Iter IpControl INTEGER, 

entFi 1 ter IpRowStatus RowStatus 

i : 



<51> 



zi^zl, s. ll^r "entFi lterIpTable"S^ <y^i°l^. 



<52> [K 11] 



entFi Iter Iplndex OBJECT-TYPE 

SYNTAX INTEGERd. .9) 

MAX-ACCESS read-only 
STATUS current 
DESCRIPTION 



The index into the entFi 1 ter IpTable. 
: : = ( entFi lterlpEntrv 1 > 



<53> 



=LZ]5L 9 & 12^ ^^d\] ^-§-5} IP 



<54> 
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n «J*>: 2003/10/1 



IK 12] 



lentFilterlp OBJECT-TYPE 



SYNTAX IpAddress 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

II 

Indicates ip address applied a filter policy. 

ii 

DEFVAL { ' 00000000' h } 

::= ( PntFilt.ftrTnRnrrv 9. > 



<55> ZLe]jL, SL 13-Br IP 4i3t ^l^l«lcf. "entFilterlpProtocol'^l *M 

(telnet)^ nfl , *l^£r ^ 1 DEFVAL 1 -i- °1 zfl^o] >*Ja1°1H 
<56> [1 13] 



lentEilterlpMask OBJECT-TYPE 



SYNTAX IpAddress 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

Indicates the mask of ip address. 
When entFi 1 ter IpProtocol is telnet, 

system always applies 'DEFVAL' to the instance of this object 
DEFVAL { 'ffffffff'h } 

::= I entFilt.ftrTnF.ntrv 3 \ 



<57> 



<58> 
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#3 «J*>: 2003/10/1 



[S. 14] 



entFi IterlpPortNum OBJ ECT-TYPE 

SYNTAX INTEGER 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

Indicates the applied port number to a filter policy. 
{ entFi IterlpEntrv 4 } 

<59> nelJi, & 15tt €^ ^JHl 
<eo> 15] 



entFi 1 terlpProtocol OBJECT-TYPE 

SYNTAX INTEGER { snmp(l), telnet(2), tftp(3) } 

MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

•i 

Indicates the applied protocol over IP protocol to a filter 

pol icy. 

ii 

: := { entFi IterlpEntry 5 } 



<62> [& 16] 



entFi 1 ter IpControl OBJECT-TYPE 

SYNTAX INTEGER { discard(l), accept(2) } 

MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

ll 

Determines whether to discard or accept a packet. 
: := I entFi IterlpEntrv 6 > 
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<63> =L£\JL, g. 17^1^ ol Z*aflfe Afl^-g. "row"* ^8-^^714, ^^^14, o] S.6\)X] ^fl<5> 

<64> [S. 17] 



entFi IterlpKowStatus OBJECT-TYPE 

SYNTAX RowStatus 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 



This object is used to create a new row or modify or 
delete an existing row in this table. 

ii 

:= I entFi Iter TnEntrv 7 > 



<65> nf-g-o_s. SNMP VI/ V2-& Ti^rfM^ ^ ^ isjl ^tr "TL1" ^-4^ 

I 18 4 

<66> [^18] 



SU-W0N> rtrv-communi ty; 



IP C01240 
< 



SU-WON 2002-02-02 01:56:40 
M C01240 C0MPLD 

"RD=SamsungAcemap , WR=K_SAMSUNG_Acemap2000_set ,TR=SS_Acemap_Trap" 
/* RTRV-COMMUNITY; [C01240] */ 



<67> 



^7]^, »rd"^ "read-only" ^^-q^, »WR"^r "read-write" ^-^qB), »TR"^r 
"S^(trap)" ?]^Elt ^^ltrcf. "TL1" ^'HS.'?]: ^ ^ S3]7> 7}±§-S\jl, ^ 

^1 EMS *1 WU500HHS] » ^lH^r EMS *i tH (500HH £. ^^^^^ ^^o] s^o)^ ^ 
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<68> A^r^r ^B^ofl ^tr ^-^j-* I 1 ^1 1 17*11 S^sM Sl^ MIB ii^*}^ tf 

^ "entFilterlpTable"^] 7 -3*l]l"8: ^El^l^T.HKr ^^S. ^ 

(setting)tr ^ "row"* (create)^ °H , "entFi lterlpProtocol"^ "ip 

H3.£-i- (protocol over ip)"BfJl£ S^^H^ ^ ^^f. 

<69> <^7]*], 3£&\%t>}jlx} t}^ SNMP/ €^/ TFTPCTrivial File Transfer 

Protocol) f-o] 7 pg-^).r}-. zi^ZL, "entFilterlpControP^H^ ^fl^^- *H s]^M"(discard) ^> 
^(accept) ^^7>^tb & 0 ltr. 

<?o> sfltg- » row .. 7 ]. ^ ^(egress policy).^ A>-g-£]t>|^ SNMP sfl^^r 

(request)^ ^°}!-<*Mi4 ^ ?A (response packet)^ i-fliLi-fl*l*l &^tf. H^H_£ 

Plt^lS ^-g-slo]^ ^€ EMS ^tiK 500)3. ^i^^^l &7fl ^cf. ^ , sfl 

# "row"7> ^(ingress policy)^ ^>-g-5]^€ ^-Mfe <&tfl3. ^* r 7fl ^cf. 

"entFilterlpTable"^ "row"7> ^^Jl \+ "entFi Iter Pol icyTable"^] "row"7> ^£}<H 

o> ^-cf. ol s(table)^ ^-^^r sr>M-^ 7}x] "roWl-ol 5^ t)-<£>£ 

<7i> "entFilterPolicyPointer"^ ^fr 6 !^ "entFi Iter IpTable"^ "row"l- 

£.91*3 (point ing)s->Jl °1 ^ "entFi IterPol icyld"^ <^£l7fl£) "row"#^) 7 }x] 

^ 7 A^. 7p§^ ^2iS. -^^^cf. ZLSlJl, "entlngressFilterPolicyld"^ " 
entEgressFilterPolicyld"^] ^^4. °1 SM"^ Al^Eflj^ Ef ^j7«l^ sfl^j 

^^.Hl <3^# ^^711 £t}. 
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-a^^r w>5q- £o], -g. ^tgofl rtfe^ #3.3 tH^o] E MSS»f u^o. 

3. £-g- 5]^. SU^r Al^efloflA-] , S NMP VI/ V2# HL°J 7l^o| afl^^ SNMP V3S, <$HZ\)o] 
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1] 

^■•M £-^7}7 r TCP/IP(Transmission Control Protocol/Internet protocol) H^- 
UDP/IP(User Datagram Protocol/Internet protocol)* ^sfl IPdnternet protocol) ^±.7} v] 
A 9l$r IP JH1« <r 9X^ IP *£t\^=r ^3)*Kr *\] l #7)1; * 

^-71 1 o]sfl ^a} a]^^ ^a], o>oltq(i D )/sfl^^|c (Password) <^ 5£ 

^ 7^1 ttM (community) -i"^- ii^H ^ ^^ofl ^^>^ ^ 2 ^Tfl-I- 3L^H ojifLo^] 
tt Aj^Bfl^ ^ e ^o^ofl c]]*V Ji^ wj-^. 

2] 

*)] 1 %H1 5U°H, #7] A 1 #7fl^, 

o>sfl I 19 ^ 1 20^ MIB(Management Information Base)°-S €^ 
a] 7lJi*l-sHr (setting)^: "row"* ^ (create)^ ?1 *fl 11 #7fl ; 

sl 71 q- SNMP sfl^M tflsfl tHe) ^(discard) ^>1" 0 1 ^(accept) ?M 

^^7>^*>£^- 12 #711; 

#7l "row"7l- #^ (egress policy) ^>-g-^l ^ ^-f^, #71 SNMP 

(request)^: t^lr^lM- ^(response packet)^: #^*}*1 ^i^- *fl 13 ^Tfl ; 

hi 

^> 

#71 "row"7> ^(ingress policy)^.S. ^--g-sH^ ^-M, #7l SNMP afl^^- 

(request)^ ^ r -I-<^l*l ^ (response packet)^ #^«>S.^- ^ X| 14 ^Tfl 
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entFilterlpTable OBJECT-TYPE 

SYNTAX SEQUENCE OF EntFi IterlpEntry 
MAX-ACCESS not-accessible 
STATUS current 
DESCRIPTION 

This table contains the details of a filter policy over IP protocol. 
' •= { entConf ig 16 > 



IS. 20] 



entFi IterlpEntry OBJ ECT-TYPE 




SYNTAX EntFi IterlpEntry 




MAX- ACCESS not-accessible 




STATUS current 




DESCRIPTION 




Each entry consists of 


a list of parameters that 


represents a filter policy over IP protocol . 


INDEX { entFi lterlplndex } 


: := { entFilterlpTable 1 } 




EntFi IterlpEntry : := SEQUENCE { 




entFi lterlplndex 


INTEGER, 


entFi 1 terlp 


IpAddress, 


entFi 1 terlpMask 


IpAddress, 


entFi 1 terlpPortNum 


INTEGER, 


entFi 1 ter IpProtocol 


INTEGER, 


entFi I ter IpControl 


INTEGER, 


entFi 1 ter IpRowStatus 
} 


RowStatus 



[3^* 3] 



*H 1 * 2 5U°H, <#7) £}^2) £-§-*Hir tg^ B]xj]^ ^ EMS *\ ^ <=Q % 
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4] 



2 * 0 H1 5a<>H, -#7] *H 12 SNMP 3£fl^J* ^(discard) ^l:^ 



(accept) -g^o] 7>^5>£^- ofefl 5. 21<*IM MIB-2.S. ^o] 3<a}s}fe 3} 



[S. 21] 



entFi 1 ter IpControl OBJ ECT-TYPE 

SYNTAX INTEGER { discard(l), accept (2) } 

MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 

ll 

Determines whether to discard or accept a packet. 
• ' = I entFi 1 terlpEntrv 6 } 



23-21 



<l 1 



0030010509 



^ 2003/10/1 



1] 


100 

/ 






130 


Wtli)/^ 


f OAMPJ 


110 


120 











300 



[S. 2] 



100 



SNJOVfiWrFTP 



TCP/IP UDP/IP 



1*1*1 <3 



400 

/ 



500 



EMS >M*H 
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[-£ 3] 



100 

J— 



SNMP/t^/TFTP 



TCP 


/IP 


UDP 


/IP 



#3 



150 



400 



500 



EMS a^UJ 
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